having account lockout issues with an RHEL 5 server. My users are getting locked out for 10 minutes after one failed login attempt even though /etc/pam.d/sshd is configured for 5 failed attempts:
auth include system-auth
auth required pam_tally2.so deny=5 onerr=fail lock_time=600
system-auth is included and is as follows:
auth required pam_env.so
auth required pam_unix.so try_first_pass nullok
Not sure what's causing the conflict. Any thoughts? Thanks in advance!